×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
usernamen6213
Engager
Member since: ‎11-30-2021
‎05-28-2022
Community Statistics
Posts 2
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎11-30-2021
Activity Feed
View All

Re: Value of Field A = Value of Field B

by in Splunk Search
‎05-28-2022 07:53 AM
‎05-28-2022 07:53 AM
Thank you @PickleRick  ... View more

Value of Field A = Value of Field B

by in Splunk Search
‎05-27-2022 07:56 PM
‎05-27-2022 07:56 PM
Hi Everyone,  First time using Splunk Community. I have been working with Splunk for about a year and I've been doing okay but I'm trying to use Active Directory logs to identify when accounts are created. I was looking for ways to do this. I tried using userAccountControl or pwdLastSet=0 but what I thought was a sure thing was to use uSNCreated=uSNChanged. But when I add that to the search, I get no result even though I can see that the original creation record has the same value for both.    Any suggestions are greatly appreciated. Thank you! ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎05-28-2022 01:19 PM
Karma given to
View All